276 to 295 of 295 NIST Jobs in England

management response is well defined. Engage risk review and assurance activities across existing suppliers. Provide IT and business advice on aspects of security standards and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Engage with I&T system owners to provide training in relation to information security, cyber resilience, phishing, and facilitation of cyber scenario desktop simulations … controls and consequences across both IT and manufacturing environments in manufacturing or similar industries. Experience working with information security standards and frameworks such as and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Proven analytical, problem-solving, planning, project delivery and supplier work packages management skills. Demonstrable experience of engaging across all levels of a company in More ❯

each of the projects we deliver continue to expand, including the use of common tooling that will facilitate the tracking and reporting of assurance actions. We are also developing NIST-compliant risk assessment methodology and tooling that is raising our quality and customer confidence, you will be part of these developments. The role in P-ITSM and likely other projects … gaining and maintaining accreditation for secure/sensitive systems using structured Risk analysis and treatment approaches Experience of process involved in continuous assurance for information security management systems, e.g. NIST, ISO Experience of developing and managing a Cyber Incident Response capability Experience of developing Security Awareness training including Threat Modelling, table top war gaming Experience in tracing through and evaluating More ❯

each of the projects we deliver continue to expand, including the use of common tooling that will facilitate the tracking and reporting of assurance actions. We are also developing NIST-compliant risk assessment methodology and tooling that is raising our quality and customer confidence, you will be part of these developments. The role in P-ITSM and likely other projects … gaining and maintaining accreditation for secure/sensitive systems using structured Risk analysis and treatment approaches Experience of process involved in continuous assurance for information security management systems, e.g. NIST, ISO Experience of developing and managing a Cyber Incident Response capability Experience of developing Security Awareness training including Threat Modelling, table top war gaming Experience in tracing through and evaluating More ❯

each of the projects we deliver continue to expand, including the use of common tooling that will facilitate the tracking and reporting of assurance actions. We are also developing NIST-compliant risk assessment methodology and tooling that is raising our quality and customer confidence, you will be part of these developments. The role in P-ITSM and likely other projects … gaining and maintaining accreditation for secure/sensitive systems using structured Risk analysis and treatment approaches Experience of process involved in continuous assurance for information security management systems, e.g. NIST, ISO Experience of developing and managing a Cyber Incident Response capability Experience of developing Security Awareness training including Threat Modelling, table top war gaming Experience in tracing through and evaluating More ❯

LMAX Group is a global financial technology company and the leading independent operator of multiple institutional execution venues for FX and cryptocurrency trading. The Group's portfolio includes LMAX Exchange (institutional FX exchange and FCA regulated MTF), LMAX Global (FCA More ❯

maintain an automated and scalable vulnerability management program using Tenable and related tools. Create and enforce vulnerability management policies, scan configurations, and best practices, aligned to frameworks such as NIST or ISO 27001. Integrate vulnerability scanning and remediation into CI/CD pipelines and development workflows to ensure security at speed; this business is in a transformative stage! Automate data … with platforms like Jira, ServiceNow, or Slack. Ability to scope penetration tests and manage findings through to remediation. Strong understanding of security frameworks and standards such as ISO 27001, NIST, and CIS. Excellent communication, presentation, and influencing skills, with the ability to explain complex technical issues to non-technical stakeholders. We invite individuals from underrepresented groups to apply for any More ❯

identity governance, and cloud IAM strategies (AWS/Azure). Deliver security architecture artefacts including HLDs, LLDs, roadmaps, and key design decisions. Ensure compliance with regulatory frameworks (GDPR, NHS, NIST, Cyber Insurance mandates) and support clients in meeting industry and insurance-driven requirements. Advise and guide internal teams, administrators, and client stakeholders to ensure smooth adoption of IAM/PAM … desirable Experience in Sailpoint implementation and management of the system along with strong CyberArc knowledge Strong background in security architecture and solution design Deep understanding of regulatory frameworks (e.g., NIST, GDPR, NHS standards) and their impact on identity security Azure AD with both implantation and design experience More ❯

identity governance, and cloud IAM strategies (AWS/Azure). Deliver security architecture artefacts including HLDs, LLDs, roadmaps, and key design decisions. Ensure compliance with regulatory frameworks (GDPR, NHS, NIST, Cyber Insurance mandates) and support clients in meeting industry and insurance-driven requirements. Advise and guide internal teams, administrators, and client stakeholders to ensure smooth adoption of IAM/PAM … desirable Experience in Sailpoint implementation and management of the system along with strong CyberArc knowledge Strong background in security architecture and solution design Deep understanding of regulatory frameworks (e.g., NIST, GDPR, NHS standards) and their impact on identity security Azure AD with both implantation and design experience More ❯

Cloud Security Engineer Kent – Hybrid Competitive Salary VIQU have partnered with a leading automotive organisation seeking a Cloud Security Engineer to join their growing security function. This role has been created to help bridge the gap between the cloud team More ❯

maintain an automated and scalable vulnerability management program using Tenable and related tools. Create and enforce vulnerability management policies, scan configurations, and best practices, aligned to frameworks such as NIST or ISO 27001. Integrate vulnerability scanning and remediation into CI/CD pipelines and development workflows to ensure security at speed; this business is in a transformative stage! Automate data … with platforms like Jira, ServiceNow, or Slack. Ability to scope penetration tests and manage findings through to remediation. Strong understanding of security frameworks and standards such as ISO 27001, NIST, and CIS. Excellent communication, presentation, and influencing skills, with the ability to explain complex technical issues to non-technical stakeholders. We invite individuals from underrepresented groups to apply for any More ❯

While this role is governance, risk, and compliance (GRC) focused, a technical background or understanding is advantageous for advising on architecture and technical security needs, will be required.Familiarity with NIST Cyber Security Framework (CSF), with experience implementing or assuring the NIST CSF framework is desirable.Though experience within the banking or financial services industry is preferred, candidates from other sectors will More ❯

include: Creating business risk models and associated material, in support of operational cyber security and business planning across a range of different domains or sectors using established frameworks (e.g. NIST, UK Government) Undertake cyber security audit processes in support of operational and business planning activity across a range of different domains or sectors against recognised standards (e.g. ISO27001, UK Government … of organisational maturity and risk exposure to cyber security, in support of operational and business planning activity across a range of different domains or sectors using established frameworks (e.g. NIST, MITRE ATT&CK, UK Government) Identify mitigations for cyber risk in a given business or operational scenario and threat environment Support development of cyber security risk cases in a given … of the Cyber Security Risk Consultant: Digitally literate (including fluency in Microsoft Office tools) Minimum of 2-3 years of experience in security vulnerability, risk, audit & compliance Understand relevant NIST frameworks and ISO27001 standards and how to apply in practice Knowledge of MITRE ATT&CK Essential qualifications for the Cyber Security Risk Consultant: We value difference and we don't More ❯

identity governance, and cloud IAM strategies (AWS/Azure). Deliver security architecture artefacts including HLDs, LLDs, roadmaps, and key design decisions. Ensure compliance with regulatory frameworks (GDPR, NHS, NIST, Cyber Insurance mandates) and support clients in meeting industry and insurance-driven requirements. Advise and guide internal teams, administrators, and client stakeholders to ensure smooth adoption of IAM/PAM … desirable Experience in Sailpoint implementation and management of the system along with strong CyberArc knowledge Strong background in security architecture and solution design Deep understanding of regulatory frameworks (e.g., NIST, GDPR, NHS standards) and their impact on identity security Azure AD with both implantation and design experience More ❯

identity governance, and cloud IAM strategies (AWS/Azure). Deliver security architecture artefacts including HLDs, LLDs, roadmaps, and key design decisions. Ensure compliance with regulatory frameworks (GDPR, NHS, NIST, Cyber Insurance mandates) and support clients in meeting industry and insurance-driven requirements. Advise and guide internal teams, administrators, and client stakeholders to ensure smooth adoption of IAM/PAM … desirable Experience in Sailpoint implementation and management of the system along with strong CyberArc knowledge Strong background in security architecture and solution design Deep understanding of regulatory frameworks (e.g., NIST, GDPR, NHS standards) and their impact on identity security Azure AD with both implantation and design experience More ❯

/Consultant CYBER SECURITY POLICY/CYBER SECURITY CONSULTANT/CYBER SECURITY POLICIES/COOKIE MANAGEMENT/PRIVACY REGULATIONS/GDPR/COMPLIANCE/RISK/DIGITAL PRIVACY/NIST/ISO 27001 £450-500 Per Day-Umbrella 6 Months- Extensions Likely Sheffield/Remote- must be willing to be on site 3 days a week Our client is looking … in cybersecurity policy writing, ideally within large or complex organisations. Understanding of cookie management, privacy regulations (e.g., GDPR, ePrivacy), and external attack surface risks. Familiarity with cybersecurity frameworks (e.g., NIST, ISO 27001) and governance models. In the first instance please submit your CV More ❯

and continuous improvement. Responsibilities: Lead the InfoSec risk register - Identify, assess, and mitigate information security risks. Own control frameworks - Maintain and improve controls to ensure alignment with standards like NIST CSF and COBIT. Drive assurance - Monitor the effectiveness of security controls, including outcomes of penetration testing and red team exercises. Collaborate with business units - Act as a security advocate and … in a regulated industry. Experience in large, complex enterprise environments (e.g., multiple sites, technologies). Hands-on leadership in technical InfoSec initiatives. Strong understanding and implementation of control frameworks (NIST CSF, COBIT). Ability to run threat intelligence and vulnerability assessments. Experience collaborating with 2nd and 3rd line governance teams (e.g., audit, compliance). Strong stakeholder engagement and influencing skills. More ❯

the certificate management lifecycle, and drive our transition to quantum-safe cryptography and automated certificate renewal. You'll be at the forefront of modernising our cryptographic practices, aligning with NIST, NCSC, and ENISA standards, and enabling secure digital innovation. This role will influence the future direction of our cyber strategy and help us build a resilient, agile cryptographic capability. What … cryptographic capabilities, identify gaps, and develop plans to close them. Oversee integration of tools such as CyberArk, Azure Key Vault, Sentinel, and Qualys. Ensure alignment with regulatory standards (e.g., NIST SP 800-57, SP 800-208, FIPS 140-3). Collaborate with engineering, risk, and compliance teams to embed cryptographic controls into CI/CD pipelines. Monitor cryptographic KPIs and More ❯

reporting, and stakeholder engagement. Develop and map out the IT audit universe and associated risks. Contribute to shaping the in-house IT audit strategy and plan. Support the annual NIST Cyber Security Framework audit. Be involved in investigations and whistleblowing matters relating to IT. This is not a “tick-box” role – it’s a chance to make a real impact … to explain technical findings in a clear, practical way. You’ll bring: A strong grounding in IT audit, including knowledge of IT General Controls and ideally exposure to the NIST Cyber Security Framework. Either a completed CISA qualification or a commitment to completing it (with funding support available). Experience from practice (e.g. risk advisory or IT audit) or from More ❯

in collaboration with a major external delivery partner. The programme spans multiple workstreams focused on defence-in-depth controls, process redesign, technology deployment, and capability development - all aligned to NIST CSF and CIS Controls maturity improvement. Responsibilities: Own the end-to-end delivery of a strategic cyber security uplift programme. Lead the RFP and selection process for external delivery partners. … Monitor programme performance, risk, and benefits realisation, including improvements in security metrics. Requirements: Experience in IT/Cyber Security programme management. Proven success delivering cyber security initiatives aligned to NIST CSF and CIS Controls. Strong stakeholder engagement skills, including executive-level communication. Experience managing large budgets and vendor relationships. Strategic thinker with hands-on delivery capability in complex environments. Please More ❯

in collaboration with a major external delivery partner. The programme spans multiple workstreams focused on defence-in-depth controls, process redesign, technology deployment, and capability development - all aligned to NIST CSF and CIS Controls maturity improvement. Responsibilities: Own the end-to-end delivery of a strategic cyber security uplift programme. Lead the RFP and selection process for external delivery partners. … Monitor programme performance, risk, and benefits realisation, including improvements in security metrics. Requirements: Experience in IT/Cyber Security programme management. Proven success delivering cyber security initiatives aligned to NIST CSF and CIS Controls. Strong stakeholder engagement skills, including executive-level communication. Experience managing large budgets and vendor relationships. Strategic thinker with hands-on delivery capability in complex environments. Please More ❯